Safari Clear History and Website Data Vulnerability

Safari Clear History and Website Data Vulnerability

CVE-2016-1849 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The "Clear History and Website Data" feature in Apple Safari before 9.1.1, as used in iOS before 9.3.2 and other products, mishandles the deletion of browsing history, which might allow local users to obtain sensitive information by leveraging read access to a Safari directory.

Learn more about our Cis Benchmark Audit For Apple Ios.